Vulnerability-Lookup

WID-SEC-W-2024-0362

Vulnerability from csaf_certbund - Published: 2024-02-13 23:00 - Updated: 2024-02-13 23:00

Summary

Microsoft Azure: Mehrere Schwachstellen

Severity

Hoch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Azure ist eine Cloud Computing-Plattform von Microsoft. Microsoft Azure DevOps Server ist eine Plattform für kollaborative Softwareprojekte. Azure Stack ist ein Microsoft-Produkt aus der Azure-Familie. Mit Azure Stack können die Public-Cloud-Services von Microsoft auch im eigenen Rechenzentrum betrieben werden.

Angriff: Ein entfernter, anonymer, authentisierter oder lokaler Angreifer kann mehrere Schwachstellen in Microsoft Azure ausnutzen, um seine Privilegien zu erhöhen, beliebigen Code auszuführen und Daten falsch darzustellen.

Betroffene Betriebssysteme: - Windows

CVE-2024-21403

Es wurden mehrere Schwachstellen in Microsoft Azure gemeldet. Zu den Schwachstellen gehören eine potenzielle Ausweitung der Privilegien auf dem IUSR, das das MySQL-Root-Passwort ermitteln kann, die Erstellung neuer Dateien in Verzeichnissen, auf die normalerweise nicht zugegriffen werden kann, die Ausführung eines Skripts, um über das Internet auf einen bestimmten Jira-Server zuzugreifen, das Hijacking vertraulicher Gäste und Container über den Netzwerkstapel hinaus sowie ein Machine-in-the-Middle-Angriff. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Code auszuführen und Informationen zu verfälschen. Das erfolgreiche Ausnutzen einer dieser Schwachstellen erfordert eine Benutzerinteraktion.

Affected products

Known affected 10 products

Product	Identifier	Version
Microsoft Azure Site Recovery Microsoft / Azure	`cpe:/a:microsoft:azure:site_recovery`	Site Recovery
Microsoft Azure Stack Hub Microsoft / Azure Stack	`cpe:/a:microsoft:azure_stack:hub`	Hub
Microsoft Azure Kubernetes Service Confidential Containers Microsoft / Azure	`cpe:/a:microsoft:azure:kubernetes_service_confidential_containers`	Kubernetes Service Confidential Containers
Microsoft Azure DevOps Server 2022.1 Microsoft / Azure DevOps Server	`cpe:/o:microsoft:azure_devops_server:2022.1`	2022.1
Microsoft Azure Active Directory B2C Microsoft / Azure	`cpe:/a:microsoft:azure:active_directory_b2c`	Active Directory B2C
Microsoft Azure Connected Machine Agent Microsoft / Azure	`cpe:/a:microsoft:azure:connected_machine_agent`	Connected Machine Agent
Microsoft Azure File Sync v16.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v16.0`	File Sync v16.0
Microsoft Azure File Sync v17.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v17.0`	File Sync v17.0
Microsoft Azure File Sync v14.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v14.0`	File Sync v14.0
Microsoft Azure File Sync v15.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v15.0`	File Sync v15.0

CVE-2024-21401

Affected products

Known affected 10 products

Product	Identifier	Version
Microsoft Azure Site Recovery Microsoft / Azure	`cpe:/a:microsoft:azure:site_recovery`	Site Recovery
Microsoft Azure Stack Hub Microsoft / Azure Stack	`cpe:/a:microsoft:azure_stack:hub`	Hub
Microsoft Azure Kubernetes Service Confidential Containers Microsoft / Azure	`cpe:/a:microsoft:azure:kubernetes_service_confidential_containers`	Kubernetes Service Confidential Containers
Microsoft Azure DevOps Server 2022.1 Microsoft / Azure DevOps Server	`cpe:/o:microsoft:azure_devops_server:2022.1`	2022.1
Microsoft Azure Active Directory B2C Microsoft / Azure	`cpe:/a:microsoft:azure:active_directory_b2c`	Active Directory B2C
Microsoft Azure Connected Machine Agent Microsoft / Azure	`cpe:/a:microsoft:azure:connected_machine_agent`	Connected Machine Agent
Microsoft Azure File Sync v16.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v16.0`	File Sync v16.0
Microsoft Azure File Sync v17.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v17.0`	File Sync v17.0
Microsoft Azure File Sync v14.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v14.0`	File Sync v14.0
Microsoft Azure File Sync v15.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v15.0`	File Sync v15.0

CVE-2024-21397

Affected products

Known affected 10 products

Product	Identifier	Version
Microsoft Azure Site Recovery Microsoft / Azure	`cpe:/a:microsoft:azure:site_recovery`	Site Recovery
Microsoft Azure Stack Hub Microsoft / Azure Stack	`cpe:/a:microsoft:azure_stack:hub`	Hub
Microsoft Azure Kubernetes Service Confidential Containers Microsoft / Azure	`cpe:/a:microsoft:azure:kubernetes_service_confidential_containers`	Kubernetes Service Confidential Containers
Microsoft Azure DevOps Server 2022.1 Microsoft / Azure DevOps Server	`cpe:/o:microsoft:azure_devops_server:2022.1`	2022.1
Microsoft Azure Active Directory B2C Microsoft / Azure	`cpe:/a:microsoft:azure:active_directory_b2c`	Active Directory B2C
Microsoft Azure Connected Machine Agent Microsoft / Azure	`cpe:/a:microsoft:azure:connected_machine_agent`	Connected Machine Agent
Microsoft Azure File Sync v16.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v16.0`	File Sync v16.0
Microsoft Azure File Sync v17.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v17.0`	File Sync v17.0
Microsoft Azure File Sync v14.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v14.0`	File Sync v14.0
Microsoft Azure File Sync v15.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v15.0`	File Sync v15.0

CVE-2024-21381

Affected products

Known affected 10 products

Product	Identifier	Version
Microsoft Azure Site Recovery Microsoft / Azure	`cpe:/a:microsoft:azure:site_recovery`	Site Recovery
Microsoft Azure Stack Hub Microsoft / Azure Stack	`cpe:/a:microsoft:azure_stack:hub`	Hub
Microsoft Azure Kubernetes Service Confidential Containers Microsoft / Azure	`cpe:/a:microsoft:azure:kubernetes_service_confidential_containers`	Kubernetes Service Confidential Containers
Microsoft Azure DevOps Server 2022.1 Microsoft / Azure DevOps Server	`cpe:/o:microsoft:azure_devops_server:2022.1`	2022.1
Microsoft Azure Active Directory B2C Microsoft / Azure	`cpe:/a:microsoft:azure:active_directory_b2c`	Active Directory B2C
Microsoft Azure Connected Machine Agent Microsoft / Azure	`cpe:/a:microsoft:azure:connected_machine_agent`	Connected Machine Agent
Microsoft Azure File Sync v16.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v16.0`	File Sync v16.0
Microsoft Azure File Sync v17.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v17.0`	File Sync v17.0
Microsoft Azure File Sync v14.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v14.0`	File Sync v14.0
Microsoft Azure File Sync v15.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v15.0`	File Sync v15.0

CVE-2024-21376

Affected products

Known affected 10 products

Product	Identifier	Version
Microsoft Azure Site Recovery Microsoft / Azure	`cpe:/a:microsoft:azure:site_recovery`	Site Recovery
Microsoft Azure Stack Hub Microsoft / Azure Stack	`cpe:/a:microsoft:azure_stack:hub`	Hub
Microsoft Azure Kubernetes Service Confidential Containers Microsoft / Azure	`cpe:/a:microsoft:azure:kubernetes_service_confidential_containers`	Kubernetes Service Confidential Containers
Microsoft Azure DevOps Server 2022.1 Microsoft / Azure DevOps Server	`cpe:/o:microsoft:azure_devops_server:2022.1`	2022.1
Microsoft Azure Active Directory B2C Microsoft / Azure	`cpe:/a:microsoft:azure:active_directory_b2c`	Active Directory B2C
Microsoft Azure Connected Machine Agent Microsoft / Azure	`cpe:/a:microsoft:azure:connected_machine_agent`	Connected Machine Agent
Microsoft Azure File Sync v16.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v16.0`	File Sync v16.0
Microsoft Azure File Sync v17.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v17.0`	File Sync v17.0
Microsoft Azure File Sync v14.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v14.0`	File Sync v14.0
Microsoft Azure File Sync v15.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v15.0`	File Sync v15.0

CVE-2024-21364

Affected products

Known affected 10 products

Product	Identifier	Version
Microsoft Azure Site Recovery Microsoft / Azure	`cpe:/a:microsoft:azure:site_recovery`	Site Recovery
Microsoft Azure Stack Hub Microsoft / Azure Stack	`cpe:/a:microsoft:azure_stack:hub`	Hub
Microsoft Azure Kubernetes Service Confidential Containers Microsoft / Azure	`cpe:/a:microsoft:azure:kubernetes_service_confidential_containers`	Kubernetes Service Confidential Containers
Microsoft Azure DevOps Server 2022.1 Microsoft / Azure DevOps Server	`cpe:/o:microsoft:azure_devops_server:2022.1`	2022.1
Microsoft Azure Active Directory B2C Microsoft / Azure	`cpe:/a:microsoft:azure:active_directory_b2c`	Active Directory B2C
Microsoft Azure Connected Machine Agent Microsoft / Azure	`cpe:/a:microsoft:azure:connected_machine_agent`	Connected Machine Agent
Microsoft Azure File Sync v16.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v16.0`	File Sync v16.0
Microsoft Azure File Sync v17.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v17.0`	File Sync v17.0
Microsoft Azure File Sync v14.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v14.0`	File Sync v14.0
Microsoft Azure File Sync v15.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v15.0`	File Sync v15.0

CVE-2024-21329

Affected products

Known affected 10 products

Product	Identifier	Version
Microsoft Azure Site Recovery Microsoft / Azure	`cpe:/a:microsoft:azure:site_recovery`	Site Recovery
Microsoft Azure Stack Hub Microsoft / Azure Stack	`cpe:/a:microsoft:azure_stack:hub`	Hub
Microsoft Azure Kubernetes Service Confidential Containers Microsoft / Azure	`cpe:/a:microsoft:azure:kubernetes_service_confidential_containers`	Kubernetes Service Confidential Containers
Microsoft Azure DevOps Server 2022.1 Microsoft / Azure DevOps Server	`cpe:/o:microsoft:azure_devops_server:2022.1`	2022.1
Microsoft Azure Active Directory B2C Microsoft / Azure	`cpe:/a:microsoft:azure:active_directory_b2c`	Active Directory B2C
Microsoft Azure Connected Machine Agent Microsoft / Azure	`cpe:/a:microsoft:azure:connected_machine_agent`	Connected Machine Agent
Microsoft Azure File Sync v16.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v16.0`	File Sync v16.0
Microsoft Azure File Sync v17.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v17.0`	File Sync v17.0
Microsoft Azure File Sync v14.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v14.0`	File Sync v14.0
Microsoft Azure File Sync v15.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v15.0`	File Sync v15.0

CVE-2024-20679

Affected products

Known affected 10 products

Product	Identifier	Version
Microsoft Azure Site Recovery Microsoft / Azure	`cpe:/a:microsoft:azure:site_recovery`	Site Recovery
Microsoft Azure Stack Hub Microsoft / Azure Stack	`cpe:/a:microsoft:azure_stack:hub`	Hub
Microsoft Azure Kubernetes Service Confidential Containers Microsoft / Azure	`cpe:/a:microsoft:azure:kubernetes_service_confidential_containers`	Kubernetes Service Confidential Containers
Microsoft Azure DevOps Server 2022.1 Microsoft / Azure DevOps Server	`cpe:/o:microsoft:azure_devops_server:2022.1`	2022.1
Microsoft Azure Active Directory B2C Microsoft / Azure	`cpe:/a:microsoft:azure:active_directory_b2c`	Active Directory B2C
Microsoft Azure Connected Machine Agent Microsoft / Azure	`cpe:/a:microsoft:azure:connected_machine_agent`	Connected Machine Agent
Microsoft Azure File Sync v16.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v16.0`	File Sync v16.0
Microsoft Azure File Sync v17.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v17.0`	File Sync v17.0
Microsoft Azure File Sync v14.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v14.0`	File Sync v14.0
Microsoft Azure File Sync v15.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v15.0`	File Sync v15.0

CVE-2024-20667

Affected products

Known affected 10 products

Product	Identifier	Version
Microsoft Azure Site Recovery Microsoft / Azure	`cpe:/a:microsoft:azure:site_recovery`	Site Recovery
Microsoft Azure Stack Hub Microsoft / Azure Stack	`cpe:/a:microsoft:azure_stack:hub`	Hub
Microsoft Azure Kubernetes Service Confidential Containers Microsoft / Azure	`cpe:/a:microsoft:azure:kubernetes_service_confidential_containers`	Kubernetes Service Confidential Containers
Microsoft Azure DevOps Server 2022.1 Microsoft / Azure DevOps Server	`cpe:/o:microsoft:azure_devops_server:2022.1`	2022.1
Microsoft Azure Active Directory B2C Microsoft / Azure	`cpe:/a:microsoft:azure:active_directory_b2c`	Active Directory B2C
Microsoft Azure Connected Machine Agent Microsoft / Azure	`cpe:/a:microsoft:azure:connected_machine_agent`	Connected Machine Agent
Microsoft Azure File Sync v16.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v16.0`	File Sync v16.0
Microsoft Azure File Sync v17.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v17.0`	File Sync v17.0
Microsoft Azure File Sync v14.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v14.0`	File Sync v14.0
Microsoft Azure File Sync v15.0 Microsoft / Azure	`cpe:/a:microsoft:azure:file_sync_v15.0`	File Sync v15.0

References

3 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://msrc.microsoft.com/update-guide	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Azure ist eine Cloud Computing-Plattform von Microsoft.\r\nMicrosoft Azure DevOps Server ist eine Plattform f\u00fcr kollaborative Softwareprojekte.\r\nAzure Stack ist ein Microsoft-Produkt aus der Azure-Familie. Mit Azure Stack k\u00f6nnen die Public-Cloud-Services von Microsoft auch im eigenen Rechenzentrum betrieben werden.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer, authentisierter oder lokaler Angreifer kann mehrere Schwachstellen in Microsoft Azure ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren und Daten falsch darzustellen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-0362 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0362.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-0362 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0362"
      },
      {
        "category": "external",
        "summary": "Microsoft Leitfaden f\u00fcr Sicherheitsupdates vom 2024-02-13",
        "url": "https://msrc.microsoft.com/update-guide"
      }
    ],
    "source_lang": "en-US",
    "title": "Microsoft Azure: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2024-02-13T23:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T18:05:09.508+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2024-0362",
      "initial_release_date": "2024-02-13T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-02-13T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "Active Directory B2C",
                "product": {
                  "name": "Microsoft Azure Active Directory B2C",
                  "product_id": "T032724",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:azure:active_directory_b2c"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Connected Machine Agent",
                "product": {
                  "name": "Microsoft Azure Connected Machine Agent",
                  "product_id": "T032725",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:azure:connected_machine_agent"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "File Sync v14.0",
                "product": {
                  "name": "Microsoft Azure File Sync v14.0",
                  "product_id": "T032726",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:azure:file_sync_v14.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "File Sync v15.0",
                "product": {
                  "name": "Microsoft Azure File Sync v15.0",
                  "product_id": "T032727",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:azure:file_sync_v15.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "File Sync v16.0",
                "product": {
                  "name": "Microsoft Azure File Sync v16.0",
                  "product_id": "T032728",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:azure:file_sync_v16.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "File Sync v17.0",
                "product": {
                  "name": "Microsoft Azure File Sync v17.0",
                  "product_id": "T032729",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:azure:file_sync_v17.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Kubernetes Service Confidential Containers",
                "product": {
                  "name": "Microsoft Azure Kubernetes Service Confidential Containers",
                  "product_id": "T032730",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:azure:kubernetes_service_confidential_containers"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Site Recovery",
                "product": {
                  "name": "Microsoft Azure Site Recovery",
                  "product_id": "T032731",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:azure:site_recovery"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Azure"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "2022.1",
                "product": {
                  "name": "Microsoft Azure DevOps Server 2022.1",
                  "product_id": "T031700",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:azure_devops_server:2022.1"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Azure DevOps Server"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "Hub",
                "product": {
                  "name": "Microsoft Azure Stack Hub",
                  "product_id": "T032732",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:azure_stack:hub"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Azure Stack"
          }
        ],
        "category": "vendor",
        "name": "Microsoft"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-21403",
      "notes": [
        {
          "category": "description",
          "text": "Es wurden mehrere Schwachstellen in Microsoft Azure gemeldet. Zu den Schwachstellen geh\u00f6ren eine potenzielle Ausweitung der Privilegien auf dem IUSR, das das MySQL-Root-Passwort ermitteln kann, die Erstellung neuer Dateien in Verzeichnissen, auf die normalerweise nicht zugegriffen werden kann, die Ausf\u00fchrung eines Skripts, um \u00fcber das Internet auf einen bestimmten Jira-Server zuzugreifen, das Hijacking vertraulicher G\u00e4ste und Container \u00fcber den Netzwerkstapel hinaus sowie ein Machine-in-the-Middle-Angriff. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Code auszuf\u00fchren und Informationen zu verf\u00e4lschen. Das erfolgreiche Ausnutzen einer dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032731",
          "T032732",
          "T032730",
          "T031700",
          "T032724",
          "T032725",
          "T032728",
          "T032729",
          "T032726",
          "T032727"
        ]
      },
      "release_date": "2024-02-13T23:00:00.000+00:00",
      "title": "CVE-2024-21403"
    },
    {
      "cve": "CVE-2024-21401",
      "notes": [
        {
          "category": "description",
          "text": "Es wurden mehrere Schwachstellen in Microsoft Azure gemeldet. Zu den Schwachstellen geh\u00f6ren eine potenzielle Ausweitung der Privilegien auf dem IUSR, das das MySQL-Root-Passwort ermitteln kann, die Erstellung neuer Dateien in Verzeichnissen, auf die normalerweise nicht zugegriffen werden kann, die Ausf\u00fchrung eines Skripts, um \u00fcber das Internet auf einen bestimmten Jira-Server zuzugreifen, das Hijacking vertraulicher G\u00e4ste und Container \u00fcber den Netzwerkstapel hinaus sowie ein Machine-in-the-Middle-Angriff. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Code auszuf\u00fchren und Informationen zu verf\u00e4lschen. Das erfolgreiche Ausnutzen einer dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032731",
          "T032732",
          "T032730",
          "T031700",
          "T032724",
          "T032725",
          "T032728",
          "T032729",
          "T032726",
          "T032727"
        ]
      },
      "release_date": "2024-02-13T23:00:00.000+00:00",
      "title": "CVE-2024-21401"
    },
    {
      "cve": "CVE-2024-21397",
      "notes": [
        {
          "category": "description",
          "text": "Es wurden mehrere Schwachstellen in Microsoft Azure gemeldet. Zu den Schwachstellen geh\u00f6ren eine potenzielle Ausweitung der Privilegien auf dem IUSR, das das MySQL-Root-Passwort ermitteln kann, die Erstellung neuer Dateien in Verzeichnissen, auf die normalerweise nicht zugegriffen werden kann, die Ausf\u00fchrung eines Skripts, um \u00fcber das Internet auf einen bestimmten Jira-Server zuzugreifen, das Hijacking vertraulicher G\u00e4ste und Container \u00fcber den Netzwerkstapel hinaus sowie ein Machine-in-the-Middle-Angriff. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Code auszuf\u00fchren und Informationen zu verf\u00e4lschen. Das erfolgreiche Ausnutzen einer dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032731",
          "T032732",
          "T032730",
          "T031700",
          "T032724",
          "T032725",
          "T032728",
          "T032729",
          "T032726",
          "T032727"
        ]
      },
      "release_date": "2024-02-13T23:00:00.000+00:00",
      "title": "CVE-2024-21397"
    },
    {
      "cve": "CVE-2024-21381",
      "notes": [
        {
          "category": "description",
          "text": "Es wurden mehrere Schwachstellen in Microsoft Azure gemeldet. Zu den Schwachstellen geh\u00f6ren eine potenzielle Ausweitung der Privilegien auf dem IUSR, das das MySQL-Root-Passwort ermitteln kann, die Erstellung neuer Dateien in Verzeichnissen, auf die normalerweise nicht zugegriffen werden kann, die Ausf\u00fchrung eines Skripts, um \u00fcber das Internet auf einen bestimmten Jira-Server zuzugreifen, das Hijacking vertraulicher G\u00e4ste und Container \u00fcber den Netzwerkstapel hinaus sowie ein Machine-in-the-Middle-Angriff. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Code auszuf\u00fchren und Informationen zu verf\u00e4lschen. Das erfolgreiche Ausnutzen einer dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032731",
          "T032732",
          "T032730",
          "T031700",
          "T032724",
          "T032725",
          "T032728",
          "T032729",
          "T032726",
          "T032727"
        ]
      },
      "release_date": "2024-02-13T23:00:00.000+00:00",
      "title": "CVE-2024-21381"
    },
    {
      "cve": "CVE-2024-21376",
      "notes": [
        {
          "category": "description",
          "text": "Es wurden mehrere Schwachstellen in Microsoft Azure gemeldet. Zu den Schwachstellen geh\u00f6ren eine potenzielle Ausweitung der Privilegien auf dem IUSR, das das MySQL-Root-Passwort ermitteln kann, die Erstellung neuer Dateien in Verzeichnissen, auf die normalerweise nicht zugegriffen werden kann, die Ausf\u00fchrung eines Skripts, um \u00fcber das Internet auf einen bestimmten Jira-Server zuzugreifen, das Hijacking vertraulicher G\u00e4ste und Container \u00fcber den Netzwerkstapel hinaus sowie ein Machine-in-the-Middle-Angriff. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Code auszuf\u00fchren und Informationen zu verf\u00e4lschen. Das erfolgreiche Ausnutzen einer dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032731",
          "T032732",
          "T032730",
          "T031700",
          "T032724",
          "T032725",
          "T032728",
          "T032729",
          "T032726",
          "T032727"
        ]
      },
      "release_date": "2024-02-13T23:00:00.000+00:00",
      "title": "CVE-2024-21376"
    },
    {
      "cve": "CVE-2024-21364",
      "notes": [
        {
          "category": "description",
          "text": "Es wurden mehrere Schwachstellen in Microsoft Azure gemeldet. Zu den Schwachstellen geh\u00f6ren eine potenzielle Ausweitung der Privilegien auf dem IUSR, das das MySQL-Root-Passwort ermitteln kann, die Erstellung neuer Dateien in Verzeichnissen, auf die normalerweise nicht zugegriffen werden kann, die Ausf\u00fchrung eines Skripts, um \u00fcber das Internet auf einen bestimmten Jira-Server zuzugreifen, das Hijacking vertraulicher G\u00e4ste und Container \u00fcber den Netzwerkstapel hinaus sowie ein Machine-in-the-Middle-Angriff. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Code auszuf\u00fchren und Informationen zu verf\u00e4lschen. Das erfolgreiche Ausnutzen einer dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032731",
          "T032732",
          "T032730",
          "T031700",
          "T032724",
          "T032725",
          "T032728",
          "T032729",
          "T032726",
          "T032727"
        ]
      },
      "release_date": "2024-02-13T23:00:00.000+00:00",
      "title": "CVE-2024-21364"
    },
    {
      "cve": "CVE-2024-21329",
      "notes": [
        {
          "category": "description",
          "text": "Es wurden mehrere Schwachstellen in Microsoft Azure gemeldet. Zu den Schwachstellen geh\u00f6ren eine potenzielle Ausweitung der Privilegien auf dem IUSR, das das MySQL-Root-Passwort ermitteln kann, die Erstellung neuer Dateien in Verzeichnissen, auf die normalerweise nicht zugegriffen werden kann, die Ausf\u00fchrung eines Skripts, um \u00fcber das Internet auf einen bestimmten Jira-Server zuzugreifen, das Hijacking vertraulicher G\u00e4ste und Container \u00fcber den Netzwerkstapel hinaus sowie ein Machine-in-the-Middle-Angriff. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Code auszuf\u00fchren und Informationen zu verf\u00e4lschen. Das erfolgreiche Ausnutzen einer dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032731",
          "T032732",
          "T032730",
          "T031700",
          "T032724",
          "T032725",
          "T032728",
          "T032729",
          "T032726",
          "T032727"
        ]
      },
      "release_date": "2024-02-13T23:00:00.000+00:00",
      "title": "CVE-2024-21329"
    },
    {
      "cve": "CVE-2024-20679",
      "notes": [
        {
          "category": "description",
          "text": "Es wurden mehrere Schwachstellen in Microsoft Azure gemeldet. Zu den Schwachstellen geh\u00f6ren eine potenzielle Ausweitung der Privilegien auf dem IUSR, das das MySQL-Root-Passwort ermitteln kann, die Erstellung neuer Dateien in Verzeichnissen, auf die normalerweise nicht zugegriffen werden kann, die Ausf\u00fchrung eines Skripts, um \u00fcber das Internet auf einen bestimmten Jira-Server zuzugreifen, das Hijacking vertraulicher G\u00e4ste und Container \u00fcber den Netzwerkstapel hinaus sowie ein Machine-in-the-Middle-Angriff. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Code auszuf\u00fchren und Informationen zu verf\u00e4lschen. Das erfolgreiche Ausnutzen einer dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032731",
          "T032732",
          "T032730",
          "T031700",
          "T032724",
          "T032725",
          "T032728",
          "T032729",
          "T032726",
          "T032727"
        ]
      },
      "release_date": "2024-02-13T23:00:00.000+00:00",
      "title": "CVE-2024-20679"
    },
    {
      "cve": "CVE-2024-20667",
      "notes": [
        {
          "category": "description",
          "text": "Es wurden mehrere Schwachstellen in Microsoft Azure gemeldet. Zu den Schwachstellen geh\u00f6ren eine potenzielle Ausweitung der Privilegien auf dem IUSR, das das MySQL-Root-Passwort ermitteln kann, die Erstellung neuer Dateien in Verzeichnissen, auf die normalerweise nicht zugegriffen werden kann, die Ausf\u00fchrung eines Skripts, um \u00fcber das Internet auf einen bestimmten Jira-Server zuzugreifen, das Hijacking vertraulicher G\u00e4ste und Container \u00fcber den Netzwerkstapel hinaus sowie ein Machine-in-the-Middle-Angriff. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Code auszuf\u00fchren und Informationen zu verf\u00e4lschen. Das erfolgreiche Ausnutzen einer dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032731",
          "T032732",
          "T032730",
          "T031700",
          "T032724",
          "T032725",
          "T032728",
          "T032729",
          "T032726",
          "T032727"
        ]
      },
      "release_date": "2024-02-13T23:00:00.000+00:00",
      "title": "CVE-2024-20667"
    }
  ]
}

CVE-2024-20667 (GCVE-0-2024-20667)

Vulnerability from cvelistv5 – Published: 2024-02-13 18:02 – Updated: 2025-05-09 18:18

Title

Azure DevOps Server Remote Code Execution Vulnerability

Summary

Azure DevOps Server Remote Code Execution Vulnerability

Severity

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

CWE

CWE-77 - Improper Neutralization of Special Elements used in a Command ('Command Injection')

Assigner

microsoft

References

1 reference

URL	Tags
https://msrc.microsoft.com/update-guide/vulnerabi…	vendor-advisory

Impacted products

3 products

Vendor	Product	Version
Microsoft	Azure DevOps Server 2022	Affected: 20231128.1 , < 20240126.4 (custom)
Microsoft	Azure DevOps Server	Affected: 1.0.0 , < 20240126.6 (custom)
Microsoft	Azure DevOps Server 2020.1.2	Affected: 2020.1.0 , < 20240126.2 (custom)

Date Public

2024-02-13 08:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-01T21:59:42.231Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "Azure DevOps Server Remote Code Execution Vulnerability",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20667"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-20667",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-05-08T18:44:48.382661Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-05-09T18:18:56.932Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "platforms": [
            "Unknown"
          ],
          "product": "Azure DevOps Server 2022",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "20240126.4",
              "status": "affected",
              "version": "20231128.1",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Unknown"
          ],
          "product": "Azure DevOps Server",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "20240126.6",
              "status": "affected",
              "version": "1.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Unknown"
          ],
          "product": "Azure DevOps Server 2020.1.2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "20240126.2",
              "status": "affected",
              "version": "2020.1.0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:microsoft:azure_devops_server:*:-:*:*:*:*:*:*",
                  "versionEndExcluding": "20240126.4",
                  "versionStartIncluding": "20231128.1",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:azure_devops_server:*:-:*:*:*:*:*:*",
                  "versionEndExcluding": "20240126.6",
                  "versionStartIncluding": "1.0.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:azure_devops_server:*:-:*:*:*:*:*:*",
                  "versionEndExcluding": "20240126.2",
                  "versionStartIncluding": "2020.1.0",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "datePublic": "2024-02-13T08:00:00.000Z",
      "descriptions": [
        {
          "lang": "en-US",
          "value": "Azure DevOps Server Remote Code Execution Vulnerability"
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en-US",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-77",
              "description": "CWE-77: Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)",
              "lang": "en-US",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-03T01:37:24.014Z",
        "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "shortName": "microsoft"
      },
      "references": [
        {
          "name": "Azure DevOps Server Remote Code Execution Vulnerability",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20667"
        }
      ],
      "title": "Azure DevOps Server Remote Code Execution Vulnerability"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
    "assignerShortName": "microsoft",
    "cveId": "CVE-2024-20667",
    "datePublished": "2024-02-13T18:02:07.424Z",
    "dateReserved": "2023-11-28T22:58:12.115Z",
    "dateUpdated": "2025-05-09T18:18:56.932Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-20679 (GCVE-0-2024-20679)

Vulnerability from cvelistv5 – Published: 2024-02-13 18:02 – Updated: 2025-05-03 01:37

Title

Azure Stack Hub Spoofing Vulnerability

Summary

Azure Stack Hub Spoofing Vulnerability

Severity

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

CWE

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Assigner

microsoft

References

1 reference

URL	Tags
https://msrc.microsoft.com/update-guide/vulnerabi…	vendor-advisory

Impacted products

1 product

Vendor	Product	Version
Microsoft	Azure Stack Hub	Affected: 1.0.0 , < 1.2311.1.22 (custom)

Date Public

2024-02-13 08:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-20679",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-02-14T16:32:30.868468Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-07-25T19:39:27.032Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-01T21:59:42.380Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "Azure Stack Hub Spoofing Vulnerability",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20679"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "platforms": [
            "Unknown"
          ],
          "product": "Azure Stack Hub",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "1.2311.1.22",
              "status": "affected",
              "version": "1.0.0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:a:microsoft:azure_stack_hub:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "1.2311.1.22",
                  "versionStartIncluding": "1.0.0",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "datePublic": "2024-02-13T08:00:00.000Z",
      "descriptions": [
        {
          "lang": "en-US",
          "value": "Azure Stack Hub Spoofing Vulnerability"
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en-US",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-79",
              "description": "CWE-79: Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
              "lang": "en-US",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-03T01:37:24.701Z",
        "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "shortName": "microsoft"
      },
      "references": [
        {
          "name": "Azure Stack Hub Spoofing Vulnerability",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20679"
        }
      ],
      "title": "Azure Stack Hub Spoofing Vulnerability"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
    "assignerShortName": "microsoft",
    "cveId": "CVE-2024-20679",
    "datePublished": "2024-02-13T18:02:26.447Z",
    "dateReserved": "2023-11-28T22:58:12.117Z",
    "dateUpdated": "2025-05-03T01:37:24.701Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-21329 (GCVE-0-2024-21329)

Vulnerability from cvelistv5 – Published: 2024-02-13 18:02 – Updated: 2025-05-03 01:37

Title

Azure Connected Machine Agent Elevation of Privilege Vulnerability

Summary

Azure Connected Machine Agent Elevation of Privilege Vulnerability

Severity

7.3 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

CWE

CWE-59 - Improper Link Resolution Before File Access ('Link Following')

Assigner

microsoft

References

1 reference

URL	Tags
https://msrc.microsoft.com/update-guide/vulnerabi…	vendor-advisory

Impacted products

1 product

Vendor	Product	Version
Microsoft	Azure Connected Machine Agent	Affected: 1.0.0 , < 1.38 (custom)

Date Public

2024-02-13 08:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-21329",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-03-07T20:26:53.980668Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:37:49.126Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-01T22:20:40.363Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "Azure Connected Machine Agent Elevation of Privilege Vulnerability",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21329"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "platforms": [
            "Unknown"
          ],
          "product": "Azure Connected Machine Agent",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "1.38",
              "status": "affected",
              "version": "1.0.0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:a:microsoft:azure_connected_machine_agent:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "1.38",
                  "versionStartIncluding": "1.0.0",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "datePublic": "2024-02-13T08:00:00.000Z",
      "descriptions": [
        {
          "lang": "en-US",
          "value": "Azure Connected Machine Agent Elevation of Privilege Vulnerability"
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en-US",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-59",
              "description": "CWE-59: Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
              "lang": "en-US",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-03T01:37:01.521Z",
        "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "shortName": "microsoft"
      },
      "references": [
        {
          "name": "Azure Connected Machine Agent Elevation of Privilege Vulnerability",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21329"
        }
      ],
      "title": "Azure Connected Machine Agent Elevation of Privilege Vulnerability"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
    "assignerShortName": "microsoft",
    "cveId": "CVE-2024-21329",
    "datePublished": "2024-02-13T18:02:09.078Z",
    "dateReserved": "2023-12-08T22:45:19.370Z",
    "dateUpdated": "2025-05-03T01:37:01.521Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-21364 (GCVE-0-2024-21364)

Vulnerability from cvelistv5 – Published: 2024-02-13 18:02 – Updated: 2025-05-03 01:37

Title

Microsoft Azure Site Recovery Elevation of Privilege Vulnerability

Summary

Microsoft Azure Site Recovery Elevation of Privilege Vulnerability

Severity

9.3 (Critical)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C

CWE

CWE-284 - Improper Access Control

Assigner

microsoft

References

1 reference

URL	Tags
https://msrc.microsoft.com/update-guide/vulnerabi…	vendor-advisory

Impacted products

1 product

Vendor	Product	Version
Microsoft	Azure Site Recovery	Affected: 2021 , < 9.57 (custom)

Date Public

2024-02-13 08:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-21364",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-02-13T21:42:03.448258Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-18T20:57:46.019Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-01T22:20:40.537Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "Microsoft Azure Site Recovery Elevation of Privilege Vulnerability",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21364"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "platforms": [
            "Unknown"
          ],
          "product": "Azure Site Recovery",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "9.57",
              "status": "affected",
              "version": "2021",
              "versionType": "custom"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:a:microsoft:azure_active_site_recovery:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "9.57",
                  "versionStartIncluding": "2021",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "datePublic": "2024-02-13T08:00:00.000Z",
      "descriptions": [
        {
          "lang": "en-US",
          "value": "Microsoft Azure Site Recovery Elevation of Privilege Vulnerability"
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 9.3,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en-US",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-284",
              "description": "CWE-284: Improper Access Control",
              "lang": "en-US",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-03T01:37:34.626Z",
        "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "shortName": "microsoft"
      },
      "references": [
        {
          "name": "Microsoft Azure Site Recovery Elevation of Privilege Vulnerability",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21364"
        }
      ],
      "title": "Microsoft Azure Site Recovery Elevation of Privilege Vulnerability"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
    "assignerShortName": "microsoft",
    "cveId": "CVE-2024-21364",
    "datePublished": "2024-02-13T18:02:38.462Z",
    "dateReserved": "2023-12-08T22:45:20.448Z",
    "dateUpdated": "2025-05-03T01:37:34.626Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-21376 (GCVE-0-2024-21376)

Vulnerability from cvelistv5 – Published: 2024-02-13 18:02 – Updated: 2025-05-08 15:57

Title

Microsoft Azure Kubernetes Service Confidential Container Remote Code Execution Vulnerability

Summary

Microsoft Azure Kubernetes Service Confidential Container Remote Code Execution Vulnerability

Severity

9 (Critical)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C

CWE

CWE-284 - Improper Access Control

Assigner

microsoft

References

1 reference

URL	Tags
https://msrc.microsoft.com/update-guide/vulnerabi…	vendor-advisory

Impacted products

1 product

Vendor	Product	Version
Microsoft	Azure Kubernetes Service	Affected: 1.0.0 , < 0.3.3 (custom)

Date Public

2024-02-13 08:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-01T22:20:40.547Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "Microsoft Azure Kubernetes Service Confidential Container Remote Code Execution Vulnerability",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21376"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-21376",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-02-13T19:30:47.188749Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-05-08T15:57:55.620Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "platforms": [
            "Unknown"
          ],
          "product": "Azure Kubernetes Service",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "0.3.3",
              "status": "affected",
              "version": "1.0.0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:a:microsoft:azure_kubernetes_service_confidential_containers:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "0.3.3",
                  "versionStartIncluding": "1.0.0",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "datePublic": "2024-02-13T08:00:00.000Z",
      "descriptions": [
        {
          "lang": "en-US",
          "value": "Microsoft Azure Kubernetes Service Confidential Container Remote Code Execution Vulnerability"
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 9,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en-US",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-284",
              "description": "CWE-284: Improper Access Control",
              "lang": "en-US",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-03T01:37:38.188Z",
        "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "shortName": "microsoft"
      },
      "references": [
        {
          "name": "Microsoft Azure Kubernetes Service Confidential Container Remote Code Execution Vulnerability",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21376"
        }
      ],
      "title": "Microsoft Azure Kubernetes Service Confidential Container Remote Code Execution Vulnerability"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
    "assignerShortName": "microsoft",
    "cveId": "CVE-2024-21376",
    "datePublished": "2024-02-13T18:02:41.796Z",
    "dateReserved": "2023-12-08T22:45:20.450Z",
    "dateUpdated": "2025-05-08T15:57:55.620Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-21381 (GCVE-0-2024-21381)

Vulnerability from cvelistv5 – Published: 2024-02-13 18:02 – Updated: 2025-05-03 01:37

Title

Microsoft Azure Active Directory B2C Spoofing Vulnerability

Summary

Microsoft Azure Active Directory B2C Spoofing Vulnerability

Severity

6.8 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C

CWE

CWE-352 - Cross-Site Request Forgery (CSRF)

Assigner

microsoft

References

1 reference

URL	Tags
https://msrc.microsoft.com/update-guide/vulnerabi…	vendor-advisory

Impacted products

1 product

Vendor	Product	Version
Microsoft	Entra	Affected: 1.0.0 , < publication (custom)

Date Public

2024-02-13 08:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-21381",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-02-14T15:32:35.646864Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-08-01T15:41:34.847Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-01T22:20:40.649Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "Microsoft Azure Active Directory B2C Spoofing Vulnerability",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21381"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "platforms": [
            "Unknown"
          ],
          "product": "Entra",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "1.0.0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:a:microsoft:azure_active_directory_b2c:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "publication",
                  "versionStartIncluding": "1.0.0",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "datePublic": "2024-02-13T08:00:00.000Z",
      "descriptions": [
        {
          "lang": "en-US",
          "value": "Microsoft Azure Active Directory B2C Spoofing Vulnerability"
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 6.8,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en-US",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-352",
              "description": "CWE-352: Cross-Site Request Forgery (CSRF)",
              "lang": "en-US",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-03T01:37:13.393Z",
        "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "shortName": "microsoft"
      },
      "references": [
        {
          "name": "Microsoft Azure Active Directory B2C Spoofing Vulnerability",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21381"
        }
      ],
      "title": "Microsoft Azure Active Directory B2C Spoofing Vulnerability"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
    "assignerShortName": "microsoft",
    "cveId": "CVE-2024-21381",
    "datePublished": "2024-02-13T18:02:19.648Z",
    "dateReserved": "2023-12-08T22:45:20.452Z",
    "dateUpdated": "2025-05-03T01:37:13.393Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-21397 (GCVE-0-2024-21397)

Vulnerability from cvelistv5 – Published: 2024-02-13 18:02 – Updated: 2025-05-03 01:37

Title

Microsoft Azure File Sync Elevation of Privilege Vulnerability

Summary

Microsoft Azure File Sync Elevation of Privilege Vulnerability

Severity

5.3 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:L/E:P/RL:O/RC:C

CWE

CWE-59 - Improper Link Resolution Before File Access ('Link Following')

Assigner

microsoft

References

1 reference

URL	Tags
https://msrc.microsoft.com/update-guide/vulnerabi…	vendor-advisory

Impacted products

4 products

Vendor	Product	Version
Microsoft	Azure File Sync	Affected: 16.0.0 , < 16.2 (custom)
Microsoft	Azure File Sync	Affected: 15.0.0 , < 16.2 (custom)
Microsoft	Azure File Sync	Affected: 14.0.0 , < 16.2 (custom)
Microsoft	Azure File Sync	Affected: 17.0.0 , < 17.1 (custom)

Date Public

2024-02-13 08:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-01T22:20:40.409Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "Microsoft Azure File Sync Elevation of Privilege Vulnerability",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21397"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-21397",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-08-28T20:24:17.500165Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-08-28T20:30:07.059Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "platforms": [
            "Unknown"
          ],
          "product": "Azure File Sync",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "16.2",
              "status": "affected",
              "version": "16.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Unknown"
          ],
          "product": "Azure File Sync",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "16.2",
              "status": "affected",
              "version": "15.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Unknown"
          ],
          "product": "Azure File Sync",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "16.2",
              "status": "affected",
              "version": "14.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Unknown"
          ],
          "product": "Azure File Sync",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "17.1",
              "status": "affected",
              "version": "17.0.0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:microsoft:azure_file_sync:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "16.2",
                  "versionStartIncluding": "16.0.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:azure_file_sync:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "16.2",
                  "versionStartIncluding": "15.0.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:azure_file_sync:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "16.2",
                  "versionStartIncluding": "14.0.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:azure_file_sync:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "17.1",
                  "versionStartIncluding": "17.0.0",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "datePublic": "2024-02-13T08:00:00.000Z",
      "descriptions": [
        {
          "lang": "en-US",
          "value": "Microsoft Azure File Sync Elevation of Privilege Vulnerability"
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:L/E:P/RL:O/RC:C",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en-US",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-59",
              "description": "CWE-59: Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
              "lang": "en-US",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-03T01:37:42.469Z",
        "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "shortName": "microsoft"
      },
      "references": [
        {
          "name": "Microsoft Azure File Sync Elevation of Privilege Vulnerability",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21397"
        }
      ],
      "title": "Microsoft Azure File Sync Elevation of Privilege Vulnerability"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
    "assignerShortName": "microsoft",
    "cveId": "CVE-2024-21397",
    "datePublished": "2024-02-13T18:02:45.742Z",
    "dateReserved": "2023-12-08T22:45:20.455Z",
    "dateUpdated": "2025-05-03T01:37:42.469Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-21401 (GCVE-0-2024-21401)

Vulnerability from cvelistv5 – Published: 2024-02-13 18:02 – Updated: 2025-05-03 01:37

Title

Microsoft Entra Jira Single-Sign-On Plugin Elevation of Privilege Vulnerability

Summary

Microsoft Entra Jira Single-Sign-On Plugin Elevation of Privilege Vulnerability

Severity

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C

CWE

CWE-284 - Improper Access Control

Assigner

microsoft

References

1 reference

URL	Tags
https://msrc.microsoft.com/update-guide/vulnerabi…	vendor-advisory

Impacted products

1 product

Vendor	Product	Version
Microsoft	Entra	Affected: 1.0.0 , < 1.1.2 (custom)

Date Public

2024-02-13 08:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-21401",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-02-14T15:35:11.625513Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-08-01T15:40:45.586Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-01T22:20:40.534Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "Microsoft Entra Jira Single-Sign-On Plugin Elevation of Privilege Vulnerability",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21401"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "platforms": [
            "Unknown"
          ],
          "product": "Entra",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "1.1.2",
              "status": "affected",
              "version": "1.0.0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:a:microsoft:entra_jira_sso_plugin:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "1.1.2",
                  "versionStartIncluding": "1.0.0",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "datePublic": "2024-02-13T08:00:00.000Z",
      "descriptions": [
        {
          "lang": "en-US",
          "value": "Microsoft Entra Jira Single-Sign-On Plugin Elevation of Privilege Vulnerability"
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en-US",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-284",
              "description": "CWE-284: Improper Access Control",
              "lang": "en-US",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-03T01:37:16.696Z",
        "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "shortName": "microsoft"
      },
      "references": [
        {
          "name": "Microsoft Entra Jira Single-Sign-On Plugin Elevation of Privilege Vulnerability",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21401"
        }
      ],
      "title": "Microsoft Entra Jira Single-Sign-On Plugin Elevation of Privilege Vulnerability"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
    "assignerShortName": "microsoft",
    "cveId": "CVE-2024-21401",
    "datePublished": "2024-02-13T18:02:23.088Z",
    "dateReserved": "2023-12-08T22:45:20.455Z",
    "dateUpdated": "2025-05-03T01:37:16.696Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-21403 (GCVE-0-2024-21403)

Vulnerability from cvelistv5 – Published: 2024-02-13 18:02 – Updated: 2025-05-09 18:24

Title

Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege Vulnerability

Summary

Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege Vulnerability

Severity

9 (Critical)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C

CWE

CWE-552 - Files or Directories Accessible to External Parties

Assigner

microsoft

References

1 reference

URL	Tags
https://msrc.microsoft.com/update-guide/vulnerabi…	vendor-advisory

Impacted products

1 product

Vendor	Product	Version
Microsoft	Azure Kubernetes Service	Affected: 1.0.0 , < 0.3.3 (custom)

Date Public

2024-02-13 08:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-01T22:20:40.581Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege Vulnerability",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21403"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-21403",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-02-21T15:44:28.053567Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-05-09T18:24:47.806Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "platforms": [
            "Unknown"
          ],
          "product": "Azure Kubernetes Service",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "0.3.3",
              "status": "affected",
              "version": "1.0.0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:a:microsoft:azure_kubernetes_service_confidential_containers:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "0.3.3",
                  "versionStartIncluding": "1.0.0",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "datePublic": "2024-02-13T08:00:00.000Z",
      "descriptions": [
        {
          "lang": "en-US",
          "value": "Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege Vulnerability"
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 9,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en-US",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-552",
              "description": "CWE-552: Files or Directories Accessible to External Parties",
              "lang": "en-US",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-03T01:37:43.609Z",
        "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "shortName": "microsoft"
      },
      "references": [
        {
          "name": "Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege Vulnerability",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21403"
        }
      ],
      "title": "Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege Vulnerability"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
    "assignerShortName": "microsoft",
    "cveId": "CVE-2024-21403",
    "datePublished": "2024-02-13T18:02:46.888Z",
    "dateReserved": "2023-12-08T22:45:21.298Z",
    "dateUpdated": "2025-05-09T18:24:47.806Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

WID-SEC-W-2024-0362

CVE-2024-20667 (GCVE-0-2024-20667)

CVE-2024-20679 (GCVE-0-2024-20679)

CVE-2024-21329 (GCVE-0-2024-21329)

CVE-2024-21364 (GCVE-0-2024-21364)

CVE-2024-21376 (GCVE-0-2024-21376)

CVE-2024-21381 (GCVE-0-2024-21381)

CVE-2024-21397 (GCVE-0-2024-21397)

CVE-2024-21401 (GCVE-0-2024-21401)

CVE-2024-21403 (GCVE-0-2024-21403)

Tags

Sightings

Nomenclature